<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd"> <glsa id="201110-12"> <title>Unbound: Denial of Service</title> <synopsis>Multiple Denial of Service vulnerabilities were found in Unbound.</synopsis> <product type="ebuild">unbound</product> <announced>2011-10-15</announced> <revised count="1">2011-10-15</revised> <bug>309117</bug> <bug>368981</bug> <access>remote</access> <affected> <package name="net-dns/unbound" auto="yes" arch="*"> <unaffected range="ge">1.4.10</unaffected> <vulnerable range="lt">1.4.10</vulnerable> </package> </affected> <background> <p>Unbound is a validating, recursive, and caching DNS resolver.</p> </background> <description> <p>Multiple vulnerabilities have been discovered in unbound. Please review the CVE identifiers referenced below for details. </p> </description> <impact type="normal"> <p>A remote attacker could cause a Denial of Service.</p> </impact> <workaround> <p>There is no known workaround at this time.</p> </workaround> <resolution> <p>All Unbound users should upgrade to the latest version:</p> <code> # emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/unbound-1.4.10" </code> </resolution> <references> <uri link="https://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0969">CVE-2010-0969</uri> <uri link="https://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1922">CVE-2011-1922</uri> </references> <metadata timestamp="2011-10-08T22:09:43Z" tag="requester">craig</metadata> <metadata timestamp="2011-10-15T09:21:34Z" tag="submitter"> keytoaster </metadata> </glsa>